Archive for the ‘Computer Security’ Category

• What is our favorite antivirus program?

  Date: 2010.08.24 | Category: Computer Security, Malware, Windows 7, Windows Vista, Windows XP | Response: 0

  We get asked this question all the time and the answer is Microsoft Security Essentials. Why do we like it? First of all it’s easy, lightweight, integrates into windows update and it’s free. While Microsoft has had it’s ups and downs in producing quality anti virus software, this one changes the game. The main reason that we recommend it is that it works. Anti-malware testing group AV-Comparatives.org not only gave Microsoft Security Essentials a top rating for malware removal, but now they’ve given it their best ranking in their performance test as well.

  AV-Comparatives.org ran a series of tests like downloading, extracting, copying, and encoding files, installing and launching applications, and they also ran through an automated testing suite as well. When it was all over, Microsoft Security Essentials was one of only three products that both blocks and removes malware well, but it’s also very light on system resources.

  Out of all the products tested, Microsoft Security Essentials was the best-performing free antivirus solution, and one of only two that received “very fast” on each of the real-world tests, earning it their top award: an “advanced+” ranking.

  I have been recommending this application to friends, family and clients for some time now and was very pleased to see MSE ranked alongside the top paid apps in both malware removal and performance.

  Here is the article from PC Mag
  http://blogs.pcmag.com/securitywatch/2009/12/av-comparatives_rates_anti-mal.php

  Here is the report from AV-Comparatives
  http://www.av-comparatives.org/comparativesreviews/performance-tests

  Here is where you can download Microsoft Security Essentials
  https://www.microsoft.com/security_essentials/

• How to use Autoruns for malware hunting.

  Date: 2009.08.15 | Category: Adware, Computer Security, Malware, Trojans, Virus, Windows 2003, Windows Vista, Windows XP | Response: 0

  One of my favorite tools for hunting malware is Autoruns from Sysinternls. When malware infects a computer it will register itself as an autorun in the registry. Autoruns are programs that start when the system boots up ensuring that the malware starts when Windows starts. Autoruns shows you these entries and allows you to remove them.

  

  From the image you can see that there are lots of entries to look through. Here is how to find suspicious entries. First narrow down the list by clicking options and check Verify Code Signatures and Hide Signed Microsoft Entries.
  Now scan the list looking for entries that are missing a description or publisher. If you are not 100% sure what it is, Google the entry and the search results should tell you if it is a malicious program. Once identified you can disable or delete the entry.

  

• How to spot a Phishing scam

  Date: 2009.07.21 | Category: Adware, Computer Security, Malware | Response: 0

  Phishing is electronic deception designed to steal your valuable personal data, such as credit card numbers, account data, passwords and other information.
  
  Phishing messages take a number of forms, often appearing to come from a service that you trust like your bank, Internet Service Provider, credit card company or social networking site.
  Phishing e-mails often include official-looking logos and other identifying information taken directly from legitimate Web sites and may include convincing details about your personal information that scammers found on your social networking pages.

  No one is immune to these scams. The following example was recently received by numerous ISP customers and employees and includes six tell-tale signs of a phishing scam:

  From: Technical Support Team [mailto:technsupportteam@mail2webmaster.com] (4)
  Sent: Sunday, July 19, 2009 6:12 PM
  To: undisclosed-recipients
  Subject: Confirm your ISP (1) account information.

  Dear ISP (1) Account Holders,

  This is to inform all ISP account holders that upgrading/maintenance of our server has been schedule (3) for July 27, 2009 to help serve you better. You may experience login problems during this period. We are also having congestion due to the anonymous registration of accounts and on this note, we are deactivating some accounts that are no longer active and your account maybe (3) deactivated if no response to this e-mail within 1 week. (5)
  To confirm and to keep your ISP account active during and after this upgrade and maintenance, you are advice (3) to e-mail your account information as below
  * E-mail: (6)
  * User ID: (6)
  * Password: (6)
  * Home/Office Address: (6)
  * Date of Birth: (6)

  Your ISP account shall remain active after we have successfully confirmed and upgrade (3) our server.

  We apologise (3) for any inconvenience.

  Thank you for your swift response to this notification.

  Technical Support Team. (2)
  Copyright © 2009
  All Rights Reserved.

  The six tell-tale signs – common to most phishing scams – included in the above example are:

  1. Incorrect name or logo usage
  2. Spacing and punctuation errors: often the result of careless “cut and paste” or “search and replace” functions – The success of these scammers rests with the volume of phishing, not necessarily the accuracy.
  3. Misspelled words: often the result of a phishing scam originating in a country unfamiliar with our language and grammar
  4. Misdirecting links: Check all links in an e-mail by moving your cursor over the link and then looking at your browser window. Phishing scammers frequently create legitimate-looking links that deceive viewers and misdirect them to another site altogether.
  5. A sense of urgency, often coupled with a threat: features of phishing scams intended to scare the individual into acting quickly, without thinking the request through.
  6. A request for your personal data: The main goal of phishing scams is the gathering of your personal data for financial gain. CenturyTel and other reputable businesses will not ask for your personal data via e-mail.

  Please remember these six indicators of phishing scams and you will make it that much harder for the scammers to hook you.